Mimic Mimicmike
2003-Sep-09 10:41 UTC
[Samba] samba3Rc3_LDAP search failed: Insufficient access
I upgrade to samba3.0.0Rc3, I can get user from other domain faster, list trust faster ;-) (But I still can't get idmap to my ldap) But when I view my log some error ,or may be somthing wrong with my config ??? (I saw some one post this (BUG) in previous version, but I see at bugzilla.samba.org this bug is "FIXED" ) [2003/09/09 16:09:33, 0] lib/smbldap.c:smbldap_open(801) Sep 9 16:09:33 rod smbd[18078]: smbldap_open: cannot access LDAP when not root.. Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0] passdb/pdb_ldap.c:ldapsam_setsamgrent(2085) Sep 9 16:09:33 rod smbd[18078]: LDAP search failed: Insufficient access Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0] passdb/pdb_ldap.c:ldapsam_enum_group_mapping(2150) Sep 9 16:09:33 rod smbd[18078]: Unable to open passdb Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0] lib/smbldap.c:smbldap_open(801) Sep 9 16:09:33 rod smbd[18078]: smbldap_open: cannot access LDAP when not root.. Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0] passdb/pdb_ldap.c:ldapsam_search_one_group(1651) Sep 9 16:09:33 rod smbd[18078]: ldapsam_search_one_group: Problem during the LDAP search: LDAP error: (Insufficient access)smbldap_open: cannot access LDAP when not root.. Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0] passdb/pdb_ldap.c:ldapsam_search_one_group(1651) Sep 9 16:09:33 rod smbd[18078]: ldapsam_search_one_group: Problem during the LDAP search: LDAP error: (Insufficient access)smbldap_open: cannot access LDAP when not root.. Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0] passdb/pdb_ldap.c:ldapsam_search_one_group(1651) Sep 9 16:09:33 rod smbd[18078]: ldapsam_search_one_group: Problem during the LDAP search: LDAP error: (Insufficient access)smbldap_open: cannot access LDAP when not root.. _________________________________________________________________ Protect your PC - get McAfee.com VirusScan Online http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963
Gerald (Jerry) Carter
2003-Sep-09 17:43 UTC
[Samba] samba3Rc3_LDAP search failed: Insufficient access
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 9 Sep 2003, Mimic Mimicmike wrote:> (I saw some one post this (BUG) in previous version, but I see at > bugzilla.samba.org this bug is "FIXED" )It's seems there are several instances of this bug. We fixed all the ones we could reproduce. Can you give me some more details? For example, * smb.conf * operation you are trying to perform when you see the failure (including client details such as OS and SP) * any error messages you see on the client> [2003/09/09 16:09:33, 0] lib/smbldap.c:smbldap_open(801) > Sep 9 16:09:33 rod smbd[18078]: smbldap_open: cannot access LDAP when not > root.. > Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0] > passdb/pdb_ldap.c:ldapsam_setsamgrent(2085) > Sep 9 16:09:33 rod smbd[18078]: LDAP search failed: Insufficient access > Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0] > passdb/pdb_ldap.c:ldapsam_enum_group_mapping(2150) > Sep 9 16:09:33 rod smbd[18078]: Unable to open passdb > Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0] > lib/smbldap.c:smbldap_open(801)cheers, jerry ---------------------------------------------------------------------- Hewlett-Packard ------------------------- http://www.hp.com SAMBA Team ---------------------- http://www.samba.org GnuPG Key ---- http://www.plainjoe.org/gpg_public.asc "You can never go home again, Oatman, but I guess you can shop there." --John Cusack - "Grosse Point Blank" (1997) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.0 (GNU/Linux) Comment: For info see http://quantumlab.net/pine_privacy_guard/ iD8DBQE/XhEnIR7qMdg1EfYRAvpNAKDkLxHufkFL2o+dAa5HED838iUqBACfX2C5 Uiu0yKKBcZ8Q/XjeQqgfhJ8=u9Go -----END PGP SIGNATURE-----
Mimic Mimicmike
2003-Sep-10 06:40 UTC
[Samba] samba3Rc3_LDAP search failed: Insufficient access
>From: "Gerald (Jerry) Carter" <jerry@samba.org> >To: Mimic Mimicmike <mimicmike@hotmail.com> >CC: samba@lists.samba.org >Subject: Re: [Samba] samba3Rc3_LDAP search failed: Insufficient access >Date: Tue, 9 Sep 2003 12:43:03 -0500 (CDT) > >-----BEGIN PGP SIGNED MESSAGE----- >Hash: SHA1 > >On Tue, 9 Sep 2003, Mimic Mimicmike wrote: > > > (I saw some one post this (BUG) in previous version, but I see at > > bugzilla.samba.org this bug is "FIXED" ) > >It's seems there are several instances of this bug. We fixed all the ones >we could reproduce. Can you give me some more details? For example, > > * smb.conf > * operation you are trying to perform when you > see the failure (including client details such > as OS and SP) > * any error messages you see on the client > > > [2003/09/09 16:09:33, 0] lib/smbldap.c:smbldap_open(801) > > Sep 9 16:09:33 rod smbd[18078]: smbldap_open: cannot access LDAP when >not > > root.. > > Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0] > > passdb/pdb_ldap.c:ldapsam_setsamgrent(2085) > > Sep 9 16:09:33 rod smbd[18078]: LDAP search failed: Insufficient >access > > Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0] > > passdb/pdb_ldap.c:ldapsam_enum_group_mapping(2150) > > Sep 9 16:09:33 rod smbd[18078]: Unable to open passdb > > Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0] > > lib/smbldap.c:smbldap_open(801)>cheers, jerry > ---------------------------------------------------------------------- > Hewlett-Packard ------------------------- http://www.hp.com > SAMBA Team ---------------------- http://www.samba.org > GnuPG Key ---- http://www.plainjoe.org/gpg_public.asc > "You can never go home again, Oatman, but I guess you can shop there." > --John Cusack - "Grosse Point Blank" (1997)Hi, My Samba PDC is Redhat9.0 Client both XPsp1 and win2k Pro. sp3 this error will occure when I find user(and group) for seting security for User in samba domain, on client no error message but quite slow (samba search 10sec. compare with w2kserv. 1-2 sec.) but It can search in finally. smb.conf ----------------------------------------------------- [global] netbios name = rod passdb backend = ldapsam, guest ldap suffix = dc=abc,dc=net ldap machine suffix = ou=Computers ldap user suffix = ou=Users ldap admin dn = "cn=admin,dc=abc,dc=net" idmap backend = ldap:ldap://xxx.xx.x.xxx ldap idmap suffix = ou=idmap,dc=abc,dc=net workgroup = abc server string = Samba admin test Server allow trusted domains = yes log file = /var/log/samba/log.%m max log size = 50 security = user password server = * password level = 8 username level = 8 encrypt passwords = yes username map = /etc/samba/smbusers socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 os level = 65 logon drive = U: logon path domain logons = yes add machine script = /usr/sbin/useradd -d /dev/null -g 1000 -s /bin/false -M %u wins server = 172.xx.x.x time server = yes winbind separator = + idmap uid = 30000-40000 idmap gid = 30000-40000 winbind enum users = yes winbind enum groups = yes [homes] comment = Home Directories browseable = no writable = yes [netlogon] comment = Network Logon Service path = /home/netlogon guest ok = yes writable = no _________________________________________________________________ MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*. http://join.msn.com/?page=features/virus
Mimic Mimicmike
2003-Sep-12 03:36 UTC
[Samba] samba3Rc3_LDAP search failed: Insufficient access
>On Tue, 9 Sep 2003, Mimic Mimicmike wrote: > > > (I saw some one post this (BUG) in previous version, but I see at > > bugzilla.samba.org this bug is "FIXED" ) > >It's seems there are several instances of this bug. We fixed all the ones >we could reproduce. Can you give me some more details? For example, > > * smb.conf > * operation you are trying to perform when you > see the failure (including client details such > as OS and SP) > * any error messages you see on the client > > > lib/smbldap.c:smbldap_open(801) > > smbldap_open: cannot access LDAP when not root.. > > passdb/pdb_ldap.c:ldapsam_setsamgrent(2085) > > LDAP search failed: Insufficient access > > passdb/pdb_ldap.c:ldapsam_enum_group_mapping(2150) > > Unable to open passdb > > lib/smbldap.c:smbldap_open(801)Hi, My Samba PDC is Redhat9.0 Client both XPsp1 and win2k Pro. sp3 this error will occure when I find user(and group) for seting security for User in samba domain, on client no error message but quite slow (samba search 10sec. compare with w2kserv. 1-2 sec.) but It can search in finally. smb.conf ----------------------------------------------------- [global] netbios name = rod passdb backend = ldapsam, guest ldap suffix = dc=abc,dc=net ldap machine suffix = ou=Computers ldap user suffix = ou=Users ldap admin dn = "cn=admin,dc=abc,dc=net" idmap backend = ldap:ldap://xxx.xx.x.xxx ldap idmap suffix = ou=idmap,dc=abc,dc=net workgroup = abc server string = Samba admin test Server allow trusted domains = yes log file = /var/log/samba/log.%m max log size = 50 security = user password server = * password level = 8 username level = 8 encrypt passwords = yes username map = /etc/samba/smbusers socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 os level = 65 logon drive = U: logon path domain logons = yes add machine script = /usr/sbin/useradd -d /dev/null -g 1000 -s /bin/false -M %u wins server = 172.xx.x.x time server = yes winbind separator = + idmap uid = 30000-40000 idmap gid = 30000-40000 winbind enum users = yes winbind enum groups = yes [homes] comment = Home Directories browseable = no writable = yes [netlogon] comment = Network Logon Service path = /home/netlogon guest ok = yes writable = no _________________________________________________________________ Tired of spam? Get advanced junk mail protection with MSN 8. http://join.msn.com/?page=features/junkmail